Hi all, I notice that when rlm_eap_tls checks the user's certificate, it does so in the authenticate section instead of the authorize section, and in the process none of the fields in the certificate are available to other modules until post_auth.
Would there be any ill effects if the rlm_eap_tls certificate parsing was moved from the authenticate section to the authorize section? Regards, Graham --
smime.p7s
Description: S/MIME cryptographic signature
- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
